package net.sourceforge.stripes.security;

import java.util.List;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import net.sourceforge.stripes.action.ActionBeanContext;

/**
 * Interface proveded to allow for role based security using the
 * 
 * {@literal @}Secure annotation which is specified at a class or method level.
 * 
 * @author Nic Holbrook
 */
public interface StripesSecurityManager
{
	public boolean isUserInRole(List<String> roles, ActionBeanContext context);
	
	public boolean isUserInRole(List<String> roles, HttpServletRequest request, HttpServletResponse response);
}
